Adding Notification Email to Body of Add-MgServicePrincipalTokenSigningCertificate

Bishka, Alex 1

Running this tutorial to try to automate SAML SSO to my use case.

I was wondering if it was possible to configure the SAML Certificates section, specifically the Token signing certificate with a notification email parameter. There doesn't seem to be anything in the docs for this. I tried adding it as a parameter to the tutorial code (listed below), but it seemed to do nothing.

Tutorial code:

   Import-Module Microsoft.Graph.Applications  
     
   $params = @{  
   	DisplayName = "CN=AWSContoso"  
   	EndDateTime = [System.DateTime]::Parse("2024-01-25T00:00:00Z")  
   }  
     
   Add-MgServicePrincipalTokenSigningCertificate -ServicePrincipalId $servicePrincipalId -BodyParameter $params

I am not super familiar with configuring SAML certificates - is this field even necessary for a trust to work? It does not state Optional in the portal like other fields, but rather Missing. This indicates to me that I likely need it. If it is necessary and this cmdlet does not support it, are there alternative solutions to adding this field programmatically?

Again, happy to provide an extra information needed.

Zehui Yao_MSFT 5,826 Reputation points

2022-12-21T02:53:53.097+00:00

Hi @Bishka, Alex , we are currently doing research on this issue and will let you know as soon as possible.
Bishka, Alex 1 Reputation point

2022-12-28T17:44:58.36+00:00

Hi @Zehui Yao_MSFT ,

Happy Holidays!

I was wondering - is there any update on this issue?